[Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2017-14107 has been fixed with recent upload

[Thorsten Alteholz (@alteholz)]

Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f432120d by Thorsten Alteholz at 2021-12-27T23:48:58+01:00
CVE-2017-14107 has been fixed with recent upload

- - - - -
f6ec7c5b by Thorsten Alteholz at 2021-12-28T00:40:28+01:00
Reserve DLA-2858-1 for libzip

- - - - -


2 changed files:

- data/CVE/list
- data/DLA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -271509,7 +271509,6 @@ CVE-2017-14108 (libgedit.a in GNOME gedit through 3.22.1 allows remote attackers
 CVE-2017-14107 (The _zip_read_eocd64 function in zip_open.c in libzip before 1.3.0 mis ...)
 	[experimental] - libzip 1.3.0+dfsg.1-1
 	- libzip 1.5.1-3 (low; bug #874010)
-	[stretch] - libzip <no-dsa> (Minor issue)
 	[jessie] - libzip <no-dsa> (Minor issue)
 	[wheezy] - libzip <no-dsa> (Minor issue)
 	- php5 <removed> (unimportant)


=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[28 Dec 2021] DLA-2858-1 libzip - security update
+	{CVE-2017-14107}
+	[stretch] - libzip 1.1.2-1.1+deb9u1
 [28 Dec 2021] DLA-2857-1 postgis - security update
 	{CVE-2017-18359}
 	[stretch] - postgis 2.3.1+dfsg-2+deb9u1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/c53e3aa14b05e9a6d0d0de313e8080d55d95da08...f6ec7c5b3be2042fd824d3148cd407bec0def63d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/c53e3aa14b05e9a6d0d0de313e8080d55d95da08...f6ec7c5b3be2042fd824d3148cd407bec0def63d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211227/bfda2ccc/attachment-0001.htm>